Avatar

Please consider registering
guest

sp_LogInOut Log In sp_Registration Register

Register | Lost password?
Advanced Search

— Forum Scope —




— Match —





— Forum Options —





Minimum search word length is 3 characters - maximum search word length is 84 characters

sp_Feed Topic RSS sp_TopicIcon
Error Signature could not be VERIFIED on connect
November 26, 2020
13:07, EET
Avatar
Xavier
Member
Members
Forum Posts: 43
Member Since:
March 26, 2014
sp_UserOfflineSmall Offline

Hi,

Using SDK 4.4.0 for the Client and the Server on the same computer I recently had errors like this when connecting (impossible to connect without restarting):
com.prosysopc.ua.stack.common.ServiceResultException: Bad_UnexpectedError (code=0x80010000, description=”Bad_UnexpectedError (code=0x80010000, description=”com.prosysopc.ua.stack.common.ServiceResultException: Bad_SecurityChecksFailed (code=0x80130000, description=”Signature could not be VERIFIED”)”)”)
at com.prosysopc.ua.stack.transport.tcp.io.TcpConnection$b.run(SourceFile:540)

It’s strange because it happened one day and was reproductible several times even when deleting the PKI folder but today it’s not reproductible… I would like to know what should I do if it happens again to have immediatly the right logs for instance.

My ideas at the moment are:
– as it is related to signature, at the moment I was creating 2 certificates (2048 et 4096 size) but I will now only create the 2048,
– update to the 4.4.2 SDK,
– active TRACE level for the class ChunkAsymmDecryptVerifier

Do you know what could cause this issue or other things that I could already do?

Thanks

November 26, 2020
15:27, EET
Avatar
Bjarne Boström
Moderator
Moderators
Forum Posts: 1032
Member Since:
April 3, 2012
sp_UserOfflineSmall Offline

Hi,

Sounds odd. I would assume either it work or not, not like randomly break.

There is at least one edge case with security mode NONE and multiple certs combined with user auth, but I would assume that is not what is used in this case?

2k and 4k certs can apply to multiple security modes, so we would do multiple endpoints for the server. We have at least one such test for the server side.
Do you also set multiple certs for the client side as well?

Our own apps tend to just use a single 2k cert.

November 26, 2020
19:37, EET
Avatar
Xavier
Member
Members
Forum Posts: 43
Member Since:
March 26, 2014
sp_UserOfflineSmall Offline

We use user auth + SIGN communication. I have also 2k and 4k certs on the client side.

I’ll let you know if it’s reproduced in the future with more logs I hope 🙂

Forum Timezone: Europe/Helsinki

Most Users Ever Online: 1919

Currently Online:
37 Guest(s)

Currently Browsing this Page:
1 Guest(s)

Top Posters:

Heikki Tahvanainen: 402

hbrackel: 144

rocket science: 88

pramanj: 86

Francesco Zambon: 83

Ibrahim: 78

Sabari: 62

kapsl: 57

gjevremovic: 49

Xavier: 43

Member Stats:

Guest Posters: 0

Members: 727

Moderators: 7

Admins: 1

Forum Stats:

Groups: 3

Forums: 15

Topics: 1529

Posts: 6471

Newest Members:

kourtneyquisenbe, ellis87832073466, zkxwilliemae, gabriellabachus, Deakin, KTP25Zof, Wojciech Kubala, efrennowell431, wilfredostuart, caitlynfajardo

Moderators: Jouni Aro: 1026, Pyry: 1, Petri: 0, Bjarne Boström: 1032, Jimmy Ni: 26, Matti Siponen: 349, Lusetti: 0

Administrators: admin: 1